http://91.243.44.250/public/sqlite3.dll
http://91.243.44.250/kVpR1jIWa.php - rule_id: 4554

91.243.44.250 - malware

ET INFO Dotted Quad Host DLL Request
ET POLICY PE EXE or DLL Windows file download HTTP
ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download
ET MALWARE Win32/Unk.Lebov Stealer CnC Exfil

http://91.243.44.250/kVpR1jIWa.php

http://91.243.44.250/public/sqlite3.dll
http://91.243.44.250/kVpR1jIWa.php - rule_id: 4554

91.243.44.250 - malware

ET INFO Dotted Quad Host DLL Request
ET POLICY PE EXE or DLL Windows file download HTTP
ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download
ET MALWARE Win32/Unk.Lebov Stealer CnC Exfil

http://91.243.44.250/kVpR1jIWa.php

http://91.243.44.250/public/sqlite3.dll
http://91.243.44.250/kVpR1jIWa.php

91.243.44.250 - malware

ET INFO Dotted Quad Host DLL Request
ET POLICY PE EXE or DLL Windows file download HTTP
ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download
ET MALWARE Win32/Unk.Lebov Stealer CnC Exfil

http://91.243.44.250/public/sqlite3.dll
http://91.243.44.250/kVpR1jIWa.php

91.243.44.250 - malware

ET INFO Dotted Quad Host DLL Request
ET POLICY PE EXE or DLL Windows file download HTTP
ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download
ET MALWARE Win32/Unk.Lebov Stealer CnC Exfil